/*
 * Copyright 2009 Google Inc.
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *     http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */

package com.google.appengine.demos.oauth;

import com.google.appengine.api.urlfetch.HTTPRequest;

import java.io.IOException;
import java.net.URL;

import javax.servlet.RequestDispatcher;
import javax.servlet.ServletException;
import javax.servlet.http.HttpServlet;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;

/**
 * Makes a two-legged OAuth call to http://gaeoauthjava.appspot.com/verify
 */
public class FetchTwoLeggedServlet extends HttpServlet {
  private static final String UNUSED_URL = "http://www.example.com/unused";
  
  private final OAuthFetchService fetcher = new OAuthFetchService();
  
  @Override
  protected void doGet(HttpServletRequest req, HttpServletResponse resp)
      throws IOException, ServletException {
    String url = "http://gaeoauthjava.appspot.com/verify";
    
    OAuthFetchOptions options = new OAuthFetchOptions();
    options.setOAuthRequestTokenUrl(UNUSED_URL);
    options.setOAuthAccessTokenUrl(UNUSED_URL);
    options.setOAuthAuthorizationUrl(UNUSED_URL);
    options.setOAuthUseToken("never");
    options.setOAuthSignUser("true");
    options.setOAuthParamLocation("uri-query");
    
    HTTPRequest fetchRequest = new HTTPRequest(new URL(url));
    OAuthFetchResponse oauthResponse = fetcher.fetch(fetchRequest, options);
    
    RequestDispatcher dispatcher = getServletContext().getRequestDispatcher("/response.jsp");
    req.setAttribute("status_code", oauthResponse.getResponse().getResponseCode());
    req.setAttribute("oauth_error", oauthResponse.getOAuthError());
    req.setAttribute("oauth_error_text", oauthResponse.getOAuthErrorText());
    req.setAttribute("api_response", new String(oauthResponse.getResponse().getContent(), "UTF-8"));
    dispatcher.forward(req, resp);
  }
}
